Conference paper Open Access

An Architecture-Centric Process for MILS Development

Delange, Julien; Nam, Min-Young; Feiler, Peter; Klieber, Will


Citation Style Language JSON Export

{
  "publisher": "Zenodo", 
  "DOI": "10.5281/zenodo.47976", 
  "title": "An Architecture-Centric Process for MILS Development", 
  "issued": {
    "date-parts": [
      [
        2016, 
        1, 
        19
      ]
    ]
  }, 
  "abstract": "<p>Safety-critical embedded systems are now software-reliant and evolving\u00a0at an incredible pace. With the emerging Internet of Things\u00a0(IoT) ecosystem, these systems are now interconnected to several\u00a0networks and exposed to potential attackers. This increases the potential\u00a0surface of attack and, ultimately, the\u00a0likelihood of a successful\u00a0attack that would penetrate the system. Until recently, many\u00a0security efforts\u00a0were focused on code analysis, but studies have\u00a0shown that security is also a matter of good\u00a0software architecture\u00a0design and practices. For example, MILS requires isolating security\u00a0domains in partitions using appropriate security components.\u00a0However, because embedded systems are evolving\u00a0quickly, new\u00a0design methods are now required to overcome the challenges of\u00a0developing them.</p>\n\n<p>In this paper, we introduce a research agenda for a new architecturecentric\u00a0development approach forMILS\u00a0systems. This would leverage\u00a0architecture models and augment them with security information\u00a0in order to perform the different activities of the development\u00a0process, including security policy validation,\u00a0implementation, and\u00a0testing. Using the same model throughout development improves\u00a0the\u00a0consistency of the development process by avoiding any translation\u00a0between different\u2014and\u00a0potentially inconsistent\u2014representations.\u00a0In addition, automating the generation of implementation and\u00a0tests\u00a0avoids the traditional mistakes of manual code production, such as\u00a0bugs and developers\u2019 assumptions about ambiguous requirements.</p>", 
  "author": [
    {
      "family": "Delange, Julien"
    }, 
    {
      "family": "Nam, Min-Young"
    }, 
    {
      "family": "Feiler, Peter"
    }, 
    {
      "family": "Klieber, Will"
    }
  ], 
  "id": "47976", 
  "event-place": "Prague", 
  "type": "paper-conference", 
  "event": "International Workshop on MILS: Architecture and Assurance for Secure Systems"
}
124
90
views
downloads
All versions This version
Views 124124
Downloads 9089
Data volume 22.4 MB22.2 MB
Unique views 111111
Unique downloads 7978

Share

Cite as